Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-01-22 | Rerun util/openssl-format-source -v -c .OpenSSL_0_9_8-post-auto-reformat | Matt Caswell | |
Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
2015-01-22 | Run util/openssl-format-source -v -c . | Matt Caswell | |
Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
2015-01-22 | More tweaks for comments due indent issues | Matt Caswell | |
Conflicts: ssl/ssl_ciph.c Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
2015-01-22 | Tweaks for comments due to indent's inability to handle them | Matt Caswell | |
Conflicts: ssl/s3_srvr.c Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
2011-02-03 | Assorted bugfixes: | Bodo Möller | |
- RLE decompression boundary case - SSL 2.0 key arg length check Submitted by: Google (Neel Mehta, Bodo Moeller) | |||
2010-06-12 | Fix gcc 4.6 warnings. Check TLS server hello extension length. | Ben Laurie | |
2009-10-01 | PR: 2055 | Dr. Stephen Henson | |
Submitted by: Julia Lawall <julia@diku.dk> Approved by: steve@openssl.org Correct BIO_ctrl error handling in s2_srvr.c | |||
2009-01-07 | Properly check EVP_VerifyFinal() and similar return values | Dr. Stephen Henson | |
(CVE-2008-5077). Submitted by: Ben Laurie, Bodo Moeller, Google Security Team | |||
2007-09-06 | gcc 4.2 fixes to avoid use or function pointer casts in OpenSSL. | Dr. Stephen Henson | |
Fix various "computed value not used" warnings too. | |||
2007-08-12 | Backport of TLS extension code to OpenSSL 0.9.8. | Dr. Stephen Henson | |
Include server name and RFC4507bis support. This is not compiled in by default and must be explicitly enabled with the Configure option enable-tlsext | |||
2005-12-05 | Fix from HEAD. | Dr. Stephen Henson | |
2005-08-05 | Initialize SSL_METHOD structures at compile time. This removes the need | Dr. Stephen Henson | |
for locking code. The CRYPTO_LOCK_SSL_METHOD lock is now no longer used. | |||
2005-05-11 | Don't use the SSL 2.0 Client Hello format if SSL 2.0 is disabled | Bodo Möller | |
with the SSL_OP_NO_SSLv2 option. | |||
2005-04-29 | check return value of RAND_pseudo_bytes; backport from the stable branch | Nils Larsch | |
2004-03-15 | Constify d2i, s2i, c2i and r2i functions and other associated | Richard Levitte | |
functions and macros. This change has associated tags: LEVITTE_before_const and LEVITTE_after_const. Those will be removed when this change has been properly reviewed. | |||
2003-12-27 | Avoid including cryptlib.h, it's not really needed. | Richard Levitte | |
Check if IDEA is being built or not. This is part of a large change submitted by Markus Friedl <markus@openbsd.org> | |||
2002-11-13 | Security fixes brought forward from 0.9.7. | Ben Laurie | |
2002-09-25 | really fix race conditions | Bodo Möller | |
Submitted by: "Patrick McCormick" <patrick@tellme.com> PR: 262 PR: 291 | |||
2002-09-23 | really fix race condition | Bodo Möller | |
PR: 262 | |||
2002-08-15 | use correct function code in error message | Bodo Möller | |
2002-08-02 | get rid of OpenSSLDie | Bodo Möller | |
2002-07-30 | OpenSSL Security Advisory [30 July 2002] | Lutz Jänicke | |
Changes marked "(CHATS)" were sponsored by the Defense Advanced Research Projects Agency (DARPA) and Air Force Research Laboratory, Air Force Materiel Command, USAF, under agreement number F30602-01-2-0537. | |||
2002-01-12 | Prototype info function. | Ben Laurie | |
2001-11-14 | cast to unsigned int, not to int to avoid the warning -- all these | Bodo Möller | |
values really are unsigned | |||
2001-11-14 | unsigned int vs. int. | Richard Levitte | |
2001-11-10 | make code a little more similar to what it looked like before the fixes, | Bodo Möller | |
call ssl2_part_read again to parse error message | |||
2001-11-10 | Implement msg_callback for SSL 2.0. | Bodo Möller | |
Important SSL 2.0 bugfixes (bugs found while implementing msg_callback). | |||
2001-10-24 | Fix SSL handshake functions and SSL_clear() such that SSL_clear() | Bodo Möller | |
never resets s->method to s->ctx->method when called from within one of the SSL handshake functions. | |||
2001-10-16 | Retain compatibility of EVP_DigestInit() and EVP_DigestFinal() | Dr. Stephen Henson | |
with existing code. Modify library to use digest *_ex() functions. | |||
2001-07-30 | Really add the EVP and all of the DES changes. | Ben Laurie | |
2001-06-01 | Fix Bleichenbacher PKCS #1 1.5 countermeasure. | Bodo Möller | |
(The attack against SSL 3.1 and TLS 1.0 is impractical anyway, otherwise this would be a security relevant patch.) | |||
2001-02-20 | Use new-style system-id macros everywhere possible. I hope I haven't | Richard Levitte | |
missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS. | |||
2001-02-09 | New Option SSL_OP_CIPHER_SERVER_PREFERENCE allows TLS/SSLv3 server to override | Lutz Jänicke | |
the clients choice; in SSLv2 the client uses the server's preferences. | |||
2000-06-01 | There have been a number of complaints from a number of sources that names | Richard Levitte | |
like Malloc, Realloc and especially Free conflict with already existing names on some operating systems or other packages. That is reason enough to change the names of the OpenSSL memory allocation macros to something that has a better chance of being unique, like prepending them with OPENSSL_. This change includes all the name changes needed throughout all C files. | |||
2000-02-20 | Tolerate fragmentation and interleaving in the SSL 3/TLS record layer. | Bodo Möller | |
2000-02-03 | ispell (and minor modifications) | Ulf Möller | |
2000-01-21 | Check RAND_bytes() return value or use RAND_pseudo_bytes(). | Ulf Möller | |
2000-01-16 | Add missing #ifndefs that caused missing symbols when building libssl | Ulf Möller | |
as a shared library without RSA. Use #ifndef NO_SSL2 instead of NO_RSA in ssl/s2*.c. Submitted by: Kris Kennaway <kris@hub.freebsd.org> Modified by Ulf Möller | |||
2000-01-13 | Precautions against using the PRNG uninitialized: RAND_bytes() now | Ulf Möller | |
returns int (1 = ok, 0 = not seeded). New function RAND_add() is the same as RAND_seed() but takes an estimate of the entropy as an additional argument. | |||
2000-01-08 | Make NO_RSA compile with pedantic. | Ben Laurie | |
1999-11-16 | Store verify_result with sessions to avoid potential security hole. | Bodo Möller | |
1999-06-09 | "extern" is a C++ reserved word. | Ulf Möller | |
Pointed out by: Janez Jere <jj@void.si> | |||
1999-05-13 | New structure type SESS_CERT used instead of CERT inside SSL_SESSION. | Bodo Möller | |
While modifying the sources, I found some inconsistencies on the use of s->cert vs. s->session->sess_cert; I don't know if those could really have caused problems, but possibly this is a proper bug-fix and not just a clean-up. | |||
1999-05-09 | No actual change, but the cert_st member of struct ssl_session_st is now | Bodo Möller | |
called sess_cert instead of just cert. This is in preparation of further changes: Probably often when s->session->sess_cert is used, we should use s->cert instead; s->session->sess_cert should be a new structure containing only the stuff that is for just one connection (e.g. the peer's certificate, which the SSL client implementations currently store in s->session->[sess_]cert, which is a very confusing thing to do). Submitted by: Reviewed by: PR: | |||
1999-04-27 | New Configure option no-<cipher> (rsa, idea, rc5, ...). | Ulf Möller | |
1999-04-26 | Remove NOPROTO definitions and error code comments. | Ulf Möller | |
1999-04-23 | Change #include filenames from <foo.h> to <openssl.h>. | Bodo Möller | |
Submitted by: Reviewed by: PR: | |||
1999-04-22 | Fixed some race conditions. | Bodo Möller | |
Submitted by: Reviewed by: PR: | |||
1999-04-19 | Change functions to ANSI C. | Ulf Möller | |
1999-04-17 | Massive constification. | Ben Laurie | |